Overview

URL saa.rovedar.com/
IP51.195.105.193
ASNOVH SAS
Location France
Report completed2022-09-02 19:41:57 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-02 2 saa.rovedar.com/ Malware
2022-09-02 2 saa.rovedar.com/ Malware
2022-09-02 2 saa.rovedar.com/data/saa/coversheet/stl_front.css?v=0.26 Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/css/main.css?v=1.3 Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/css/custome.css?v=0.1 Malware
2022-09-02 2 saa.rovedar.com/inc/js/article.js?v=0.31 Malware
2022-09-02 2 saa.rovedar.com/inc/js/d3/seedrandom.min.js Malware
2022-09-02 2 saa.rovedar.com/themes/base/front/assets/plugins/jquery/jquery.min.js?v=0.5 Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/js/bootstrap.min.js Malware
2022-09-02 2 saa.rovedar.com/inc/js/d3/d3.wordcloud.js Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/js/mutate.events.js Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/js/mutate.min.js Malware
2022-09-02 2 saa.rovedar.com/inc/js/d3/d3.layout.cloud.min.js Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/js/select2.min.js Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/js/bootstrap-dialog.min.js Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/js/jquery.minipreview.js Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/js/jquery.dataTables.min.js Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/js/dataTables.bootstrap.min.js Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/js/datepicker-en.js Malware
2022-09-02 2 saa.rovedar.com/themes/base/front/assets/plugins/toastr/toastr.js Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/js/action.js Malware
2022-09-02 2 saa.rovedar.com/themes/base/front/assets/fonts/opensans/open-sans-v29-latin (...) Malware
2022-09-02 2 saa.rovedar.com/themes/base/front/assets/fonts/opensans/open-sans-v29-latin (...) Malware
2022-09-02 2 saa.rovedar.com/themes/base/front/assets/fonts/opensans/open-sans-v29-latin (...) Malware
2022-09-02 2 saa.rovedar.com/themes/base/front/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 Malware
2022-09-02 2 saa.rovedar.com/themes/theme1/front/assets/js/display.js Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (9)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS saa.rovedar.com (52) 0 2022-04-09 21:13:39 UTC 2022-08-31 08:57:04 UTC 51.195.105.193 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-02 04:27:28 UTC 34.117.237.239
mnemonic passive DNS dvcasha2.ocsp-certum.com (1) 71753 2014-11-27 08:04:42 UTC 2022-09-02 06:36:40 UTC 23.36.79.10
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-02 16:02:14 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-02 04:36:08 UTC 44.233.140.213
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-02 09:29:12 UTC 34.120.237.76
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-02 18:07:59 UTC 143.204.55.115
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-02 04:26:06 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-02 04:47:06 UTC 143.204.55.110


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 51.195.105.193

Date UQ / IDS / BL URL IP
2022-09-02 19:41:57 +0000
0 - 0 - 26 saa.rovedar.com/ 51.195.105.193

Last 5 reports on ASN: OVH SAS

Date UQ / IDS / BL URL IP
2022-12-08 03:00:25 +0000
0 - 0 - 3 t2.blowingwnd.com/l.php?p=c:o6450ylcdnn31butk (...) 51.161.115.163
2022-12-08 02:58:37 +0000
0 - 0 - 2 emir-elbahr.com/wp-content/committingca.html 91.121.61.129
2022-12-08 02:57:05 +0000
0 - 0 - 2 61.bay.com/pjx 51.81.90.52
2022-12-08 02:54:05 +0000
0 - 0 - 2 madeconsultants.gr/%C2%BB 141.95.126.89
2022-12-08 02:40:57 +0000
0 - 0 - 1 aws.oficce.cloudns.asia/live/login.php 149.202.249.203

Last 3 reports on domain: rovedar.com

Date UQ / IDS / BL URL IP
2022-09-02 19:41:57 +0000
0 - 0 - 26 saa.rovedar.com/ 51.195.105.193
2022-09-02 08:41:02 +0000
0 - 0 - 48 ps.rovedar.com/ 168.119.149.7
2022-09-01 14:30:19 +0000
0 - 0 - 2 www.ps.rovedar.com/ 116.202.195.240

No other reports with similar screenshot



JavaScript

Executed Scripts (20)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (71)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         51.195.105.193
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Sep 2022 19:41:45 GMT
Server: Apache
Location: https://saa.rovedar.com/
Content-Length: 232
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   232
Md5:    3743224bdd62743d031abd3efe79d205
Sha1:   0ba647762ddc238d770fdb1df7a534c92b1920ed
Sha256: 4e95b5519c1020f573c174e4185204f55409f280711be16bf12b7748bcadc141

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 18:41:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2sRqdh40bAvoQhraDdHPw1a-sAj4fbof7nN5eti1J-mmhrF6UbLxxw==
Age: 3592


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2782
Expires: Fri, 02 Sep 2022 20:28:08 GMT
Date: Fri, 02 Sep 2022 19:41:46 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wYzzkgxcZl6e5xcaudQrXbKmlv7uNO1X7KOPpFmPa0vg4OBMts0scg==
age: 66389
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 02 Sep 2022 19:41:46 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: dvcasha2.ocsp-certum.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.79.10
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 1599
X-Cached: MISS
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=900
Date: Fri, 02 Sep 2022 19:41:46 GMT
Connection: keep-alive
X-N: S


--- Additional Info ---
Magic:  data
Size:   1599
Md5:    d82eb42c9f36ffa27ecd87d233492443
Sha1:   4d60cad48d7df1cc49002bc96f47490d1660ee97
Sha256: 41446abbbdd4abdf5a732d426f271117493a2b2bcbe1e8f8e063757951ee18c1
                                        
                                            GET / HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: juFirstLang=en; expires=Sun, 02-Oct-2022 19:41:46 GMT; Max-Age=2592000; path=/; secure; HttpOnly juSecondLang=fa; expires=Sun, 02-Oct-2022 19:41:46 GMT; Max-Age=2592000; path=/; secure; HttpOnly juLang=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=saa.rovedar.com; secure; HttpOnly juLang=en; expires=Sun, 02-Oct-2022 19:41:46 GMT; Max-Age=2592000; path=/; secure; HttpOnly PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur; path=/; domain=saa.rovedar.com; secure; HttpOnly; SameSite=None
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7147
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (855), with CRLF, LF line terminators
Size:   7147
Md5:    bc73340731b86f50caa89417b84a1a7e
Sha1:   b58d0f8f471a4bbe68be9fc79e7dc5a07c6d6f07
Sha256: 9cb25391061d6a62e6620241c3fe34f7d357302d86a10200d36c7c0d63973a4b

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/base/front/assets/plugins/bootstrap/css/bootstrap.min.css?v=0.02 HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Sat, 11 Dec 2021 15:23:35 GMT
ETag: "1da71-5d2e06c4df396-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19741
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65369)
Size:   19741
Md5:    363f67fe59dd4faea91f04cc7cc05b85
Sha1:   af00725f91c41ab713072e08e4e6a9c01fc36aba
Sha256: 5180a692e4012182c0204b295cd51418e4513cbe61335c66ef7edf6efcabe5e3
                                        
                                            GET /themes/base/front/assets/css/gfonts-OpenSans.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Tue, 14 Jun 2022 10:19:00 GMT
ETag: "23d9-5e165bbaa9c73-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 640
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   640
Md5:    37fe116d8e1ff9cdbe3d184d85cc2938
Sha1:   c710d1a42adf031dbdf659a5f0d6865b841d378a
Sha256: 33d1263b2fb1270086c692eef427352d6bedacc7e4724c5badd24ccfde0674ab
                                        
                                            GET /themes/theme1/front/assets/css/jquery.minipreview.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "4ca-5bd53429cadf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 494
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   494
Md5:    3ca581c8e4008fc0b3f7a44f4ee060e5
Sha1:   4ee56b345347e52a4a3730cba9b938e8c09a4a4b
Sha256: 51a7e35cc718dc1e23cc67e4d9e44925b4f7ce90bebe3fd8731c14143e61b358
                                        
                                            GET /themes/theme1/front/assets/css/jquery-ui.min.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Sat, 11 Dec 2021 15:23:35 GMT
ETag: "7d82-5d2e06c4e1e8e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7897
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (29191)
Size:   7897
Md5:    7148f90f1ab165bff281cf0c56efb735
Sha1:   5a9ae19daca45f1c25d5d65758fb41b605676b4c
Sha256: abe0b6cde92922435036bd27949c5b08ca703970eb5e1e38d182828d85ea2d02
                                        
                                            GET /themes/base/front/assets/css/font-awesome.min.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:40 GMT
ETag: "7873-5bd534299a0b4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6955
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (30834)
Size:   6955
Md5:    983f3da6ac4e4041f84630c92c5e99fb
Sha1:   f5fbe2353dd87fff3426f8edebaa062b4e900f07
Sha256: b8be098e2ea5bc1e420338bb6fd9ab246da3e5f7f4eb2f3cd66148c75f2a7ce7
                                        
                                            GET /themes/theme1/front/assets/css/select2.min.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "3bab-5bd53429cadf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2008
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (15274)
Size:   2008
Md5:    3bad61ed7f9eae85246ae53b8dcde0cf
Sha1:   bd55db59343594fe88c4a0b9c795326e64512b77
Sha256: 9df75a65d3175b718a1b37a2bc67e39bf31ab297406a9ade0c1e8076725732b7
                                        
                                            GET /themes/theme1/front/assets/css/pretty-checkbox.min.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "4b4a-5bd53429cadf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2724
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (19017)
Size:   2724
Md5:    8fd5b4cd7c6b29880d3e6d727fd13eb3
Sha1:   491bedc00a454e0635e2bede5a15546bb9a5b0b4
Sha256: 0f3982dee6e8964211cfb4b739830243679fe3a8cb3d7d4be5ca252d15f2cb06
                                        
                                            GET /themes/theme1/front/assets/css/bootstrap-dialog.min.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "72d-5bd53429cadf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 483
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1837), with no line terminators
Size:   483
Md5:    91e46a6922017443407c184ed275ed2a
Sha1:   e679607761ad355126d06939acd2bbd82423f9d4
Sha256: 3f16ec148fcb9a41aa47de6c697cded4ddf9aca40cd161ccb095853e9a68de4f
                                        
                                            GET /themes/theme1/front/assets/css/cards-style.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "3428-5bd53429cadf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2615
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  assembler source, ASCII text
Size:   2615
Md5:    b462621c69c89560e212057181e32e19
Sha1:   721692ebb80c06235739e3733ffa7edfd2bc1dfb
Sha256: 5d872ebcf4292f5aca60b11df094128e6a9bb320028c348c1c91bd38cadb2f1f
                                        
                                            GET /themes/theme1/front/assets/css/dataTables.bootstrap.min.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "10c5-5bd53429cadf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 953
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (4292)
Size:   953
Md5:    160b038c7437601c3fe2d3c194e23e22
Sha1:   46a395741e67b4178a7ab5e7563526f76b9f7561
Sha256: b40d45aa99661f2f0d545de921cff7bc33c97decaef54094a8c5c7cb27e37cee
                                        
                                            GET /themes/theme1/front/assets/css/datepicker.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "63a2-5bd53429cadf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15794
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (11425)
Size:   15794
Md5:    fb9f153a6ce4f337ff853255804f59ff
Sha1:   36b93694fdc82f987e3f53b673a01e0a25abfb18
Sha256: 268193e66b43f256a370288a0dc1168b444228a11b42a335a32c2556c714f938
                                        
                                            GET /themes/base/front/assets/css/academicons.min.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:40 GMT
ETag: "1238-5bd534299a0b4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1156
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (4664), with no line terminators
Size:   1156
Md5:    672a7eecd0ffb5e31377cd06162771e7
Sha1:   5ac1a63bc8fa684c2cafd1491942cd85b3ec92af
Sha256: 16a47012bd91b818eae2ca7ebe61e7b1586b740dd3d036d9a3ab4a3a48845ea3
                                        
                                            GET /themes/base/front/assets/css/social-icon-font.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:40 GMT
ETag: "8a9-5bd534299a0b4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 565
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   565
Md5:    e5b09b0a38df37bb263dea79ead5af2c
Sha1:   daa38d49a7a58296d8ca8c9bdd00a8265757dbfd
Sha256: e510c9e8071f13f8edad957a06bd6093b3a72929348a966380005ae1b7a54db8
                                        
                                            GET /themes/theme1/front/assets/css/color.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "1fa6-5bd53429cadf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1589
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1589
Md5:    59bf1a9f535647d2d860387f7717f7fe
Sha1:   775601c8d62c07733e84fd24eed397d8fe9f8c54
Sha256: 007e12ecd9f5bc940dfdcef240a1689ee30fccedd807beab85152bbfd30b99c6
                                        
                                            GET /data/saa/coversheet/stl_front.css?v=0.26 HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Tue, 23 Aug 2022 10:23:56 GMT
ETag: "121-5e6e5f6388561-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 176
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   176
Md5:    db41fd20a1ca75a46a8515a65b2fa7c0
Sha1:   ce4190a47fbae29703e04757d2b0e394a9bf1a73
Sha256: d9258565ca92df301489c4b3c3aff6cc1651a59989c5670a6f376aaa9cc1a9c6

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /data/saa/coversheet/stl.css HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 13:14:49 GMT
ETag: "0-5bd56af46bdf1"
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive

                                        
                                            GET /inc/js/common.js?v=0.1 HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Sat, 27 Aug 2022 19:24:24 GMT
ETag: "4045-5e73dfa71892a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4584
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (390)
Size:   4584
Md5:    3d3052cd773dec6a347e4f2a91e7919d
Sha1:   b4c45121df94f1f8c0c66e5fdd9c558fccd84615
Sha256: 3637d46ae1b51209a746ac600b0152ea1a53681660b349636826d137a223dace
                                        
                                            GET /themes/theme1/front/assets/css/main.css?v=1.3 HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Mon, 04 Jul 2022 08:03:28 GMT
ETag: "165fb-5e2f62bd2b683-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17714
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text, with very long lines (21804)
Size:   17714
Md5:    8015eac09be52e3f67015d2b534d7674
Sha1:   2a103b1cb6b74206403aa98229a1afa5693eeb50
Sha256: 492d0dd96ae478795237d4a00b32c35d8370e7f2e375022be29e2720f7f4084d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/theme1/front/assets/css/custome.css?v=0.1 HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "90-5bd53429cadf5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 131
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   131
Md5:    d1ec06828d3e471f59cd7f59785d4ebe
Sha1:   1ae1832b213ec59f18b2c2e446c7cf5c1f97ca9c
Sha256: 4ecbb65d18bdfb2f91ee7342da26797a225e4b1ea2b05bbb8e006835ef90a282

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /inc/js/article.js?v=0.31 HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 21:05:45 GMT
ETag: "1c80-5d74bbb1e87ed-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2273
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   2273
Md5:    0dd57b807234c7631b2880a3e56a2e8e
Sha1:   16bc68f1f5d72a37e62568ae5234ad0747e1a246
Sha256: 682e8678673adefb4582521560620a949997b0a9fb1b151069d3c4c7e9cd2f40

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /inc/js/d3/seedrandom.min.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:39 GMT
ETag: "559-5bd53428695ac-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 812
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1369), with no line terminators
Size:   812
Md5:    9fc70be33b70b29280970bb15848a89f
Sha1:   3b16c20d33d56cb60124d54d6d79d271443feb73
Sha256: 14f5c31f0858b5a5b80cb0112705c5230a8eca9fcb8121c3f911a57b8e3bd314

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/base/front/assets/plugins/jquery/jquery.min.js?v=0.5 HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Sat, 11 Dec 2021 15:23:35 GMT
ETag: "15d9d-5d2e06c4df396-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30902
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30902
Md5:    31d53c8cdce8012a24abc8e84aa972e5
Sha1:   7287b1ec5d88304ba44fc1958b8de9596274c4e3
Sha256: 1b72bc7f54bc9170e605f6c4bb5529668c4ee3efeee602fdb63036b45b49f41c

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/theme1/front/assets/js/bootstrap.min.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "90b5-5bd53429d4a35-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9833
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32033)
Size:   9833
Md5:    c83dab682eea0b37ac9522e2856cbb6b
Sha1:   db1fb35549a4ac9cc12811f09bc4b07b48c51434
Sha256: a9611bc805de07c98225bb878876a24b063fa52559adaf2ba4e997566d5cf3a1

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /inc/js/d3/d3.wordcloud.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:39 GMT
ETag: "1312-5bd53428695ac-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1326
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  assembler source, ASCII text
Size:   1326
Md5:    3624e5ad3c07b99464b1943380a909d0
Sha1:   f136bcf2b62b06366d2f38d4d489a9a8e54d070c
Sha256: 12593e71284fa108e90289e924525b39222db153f77e57ca33e878cd8a7fcf5e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/theme1/front/assets/js/mutate.events.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "e23-5bd53429d59d5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 592
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   592
Md5:    e9bf0e630d564deac1656e05c9f95a42
Sha1:   8d16435cb3b5cc6555360b7db8adb0aa4a5e279e
Sha256: 6fad277d13ded9d030a96c7f15f542ce756da6f376b59c6a9b561d202d01510d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/theme1/front/assets/js/mutate.min.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "466-5bd53429d59d5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 463
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (488)
Size:   463
Md5:    fcd7612bdea5f88c1d8e95d0ebbc6e16
Sha1:   579d035347ad16d2fbfba5f5b673b59e159d3fd2
Sha256: 74588d4c2fb0ab4557c4d50883a5b69a34d3d23827a8cfe1abfde8d47578e6d9

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /inc/js/d3/d3.layout.cloud.min.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:39 GMT
ETag: "2d7f-5bd534286860c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3245
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   3245
Md5:    312c90d9f4fa32fc943621296de48688
Sha1:   477ab636c7da2cc30a3de8133c0ee86cabcc71a5
Sha256: d5048768062ca867fa559bb9dee3a599a4b08a75810e86280a3f0a8a3464d2ce

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/theme1/front/assets/js/select2.min.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "108a7-5bd53429d59d5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19358
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (64217), with no line terminators
Size:   19358
Md5:    3ac7f8f2128800da45644e15374e8a3c
Sha1:   e694aad9aeb47fe7e774ad5386e928a371b79864
Sha256: ab13ad17ec51c7d7d3d1135ef96250646a03ee2dd0962a825c550626bc58b05a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/theme1/front/assets/js/bootstrap-dialog.min.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "4ff2-5bd53429d4a35-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5023
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (20466), with no line terminators
Size:   5023
Md5:    5e7f0a2adcdbbc59f9d9b88f9e8d4743
Sha1:   b9328c7fe6657627a83aef4b3fbb04651974b318
Sha256: 290aee4af79ad533fbf7d5671a9b43aa0a68bbc04b24a1fcb8691318e3d188a1

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/theme1/front/assets/js/jquery.minipreview.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "f77-5bd53429d59d5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1145
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   1145
Md5:    aab38ca4013a53ec36a6dd8167823f5a
Sha1:   9b2068882ed771ed04bf4bf59d6cf34208598454
Sha256: 36ffe28369cec10955c154dd2895b07b60459e5ad5b247a6b55ebe3759a08862

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/theme1/front/assets/js/jquery.dataTables.min.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "13ff2-5bd53429d59d5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 27843
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (571)
Size:   27843
Md5:    a7fc451a4fe714967b5b502d3ce4ec29
Sha1:   4c10ac4652b47f24dc80eb26a65d14bb2268277c
Sha256: f0de4c5c2add23c5c0889f52444a54b769603fd98e68cdbf875e684804a96e03

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/theme1/front/assets/js/dataTables.bootstrap.min.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:46 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "7ae-5bd53429d4a35-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1063
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (514)
Size:   1063
Md5:    8b23d407d0113fae39969e07dd45e0b7
Sha1:   b084eb050e33e925f28b6b71e0cd6e100ae83588
Sha256: 29d7402b22777ac3d2e2991cd66b288a8df2cbcd7d516c28d1dc75215218e899

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 02 Sep 2022 19:38:16 GMT
Expires: Fri, 02 Sep 2022 20:15:59 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YQYjGHfNOlvAEcGxRjauOg0BDZvVJ5gOmFjSeZWE0tE_VhGoRUA-bg==
Age: 211


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /themes/theme1/front/assets/js/datepicker-en.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "13bb3-5bd53429d4a35-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20447
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   20447
Md5:    5ad40a496d484b584433411a8b426b7e
Sha1:   5b5bd8aae9e33b679dc2466763ea72e4a584f1af
Sha256: a9c1a37fc41ffbdf733242ba44beedf7ccb0fb1aa74a9661440013e1587ad652

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/base/front/assets/plugins/toastr/toastr.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "3dbd-5bd53429c30f4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3046
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   3046
Md5:    ee7c8e59b87fd1a8e810578740e3f065
Sha1:   770afd2c526ccd3df5c7fd8f7161f9e6b9fd6008
Sha256: d5ae26075255c6ee57957ab8b365213cfe24d8b305c84b6d586cfcf1250bd796

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/theme1/front/assets/js/action.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "8db-5bd53429d4a35-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 778
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   778
Md5:    85351c8764c4e31ef4333909537d753d
Sha1:   8fd92b8b2e21829b4f0f79e9440d04ace722647c
Sha256: f4e31853fb11836f1c9c450a4619b6916179e58c2f5fcfa2a7cfe475ff5a198d

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/base/front/assets/fonts/opensans/open-sans-v29-latin-regular.woff2 HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://saa.rovedar.com/themes/base/front/assets/css/gfonts-OpenSans.css
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Tue, 14 Jun 2022 10:19:00 GMT
ETag: "4150-5e165bbabc93b"
Accept-Ranges: bytes
Content-Length: 16720
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16720, version 1.0\012- data
Size:   16720
Md5:    c416910cae8fe4258cdf8c35933e9f4c
Sha1:   4a768ba0a3abc49b572c08c235db9f066ffc2b18
Sha256: 9434dddcdf38e072b039bb92f9e90639ec0e0563e8ff51604a60d91830c29289

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/base/front/assets/fonts/opensans/open-sans-v29-latin-700.woff2 HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://saa.rovedar.com/themes/base/front/assets/css/gfonts-OpenSans.css
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Tue, 14 Jun 2022 10:19:00 GMT
ETag: "3fe8-5e165bbabade3"
Accept-Ranges: bytes
Content-Length: 16360
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16360, version 1.0\012- data
Size:   16360
Md5:    4333f8c1f02dee549bdb7353a3b48e82
Sha1:   a6bd7db06cf5ea54c529c1c8efc81cb805fa51e3
Sha256: e3f25c51e5e6f03dc0513385a1d8730f36537309864c444ab253ed66b2bf2db3

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4151
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:41:47 GMT
Last-Modified: Fri, 02 Sep 2022 18:32:36 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /themes/base/front/assets/fonts/opensans/open-sans-v29-latin-500.woff2 HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://saa.rovedar.com/themes/base/front/assets/css/gfonts-OpenSans.css
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Tue, 14 Jun 2022 10:19:00 GMT
ETag: "41ac-5e165bbab9a5b"
Accept-Ranges: bytes
Content-Length: 16812
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 16812, version 1.0\012- data
Size:   16812
Md5:    c4b206a48bb43e7920c17930bfd50f5e
Sha1:   dda1c1211daa2460064d984b41e4b88c3d637983
Sha256: f063375103cfe3be278f6dddc1835a21d92551b044ea1dcbc8219b67279a8089

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /themes/theme1/front/assets/images/w80.png HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/themes/theme1/front/assets/css/color.css
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "39c-5bd53429d4a35-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 572
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size:   572
Md5:    7d18e7ead6e0888283bdb99e8609891d
Sha1:   87113aecf0a4f9ddddc4dc6cb0b051a542ab30a2
Sha256: e2629ae4ed77b3fb391ebb6e304d6499a8cf910d57356fc59bf81f9cb355dafc
                                        
                                            GET /data/saa/coversheet/logo_en.png HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Thu, 09 Sep 2021 07:10:24 GMT
ETag: "495d-5cb8ab158f040-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 18639
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 652 x 727, 8-bit colormap, non-interlaced\012- data
Size:   18639
Md5:    cb037b066cf45c462f2d0d377c9f35e1
Sha1:   33a5c3e11abf6126b6852661960db7ec739388ff
Sha256: 2c85b90e3481229d2169c4102849e3efeb2d58ecef95c1ca4f5f2dca45254e72
                                        
                                            GET /themes/base/front/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://saa.rovedar.com/themes/base/front/assets/css/font-awesome.min.css
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:40 GMT
ETag: "12d68-5bd534299df34"
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /data/saa/news/cc_by.png HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 06:01:30 GMT
ETag: "f02-5e0488107c4aa-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3865
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 378 x 133, 8-bit colormap, non-interlaced\012- data
Size:   3865
Md5:    d4f48cb285a71caa6da76231e167f7fb
Sha1:   ac3e7549a6aae0197a84824bc71f2a039141db80
Sha256: adc7f56c5d36d17e0105a04cfe3b9f739acb6a332f424e72434dc1422d5345e7
                                        
                                            GET /data/saa/news/ithenticate.png HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 06:01:30 GMT
ETag: "25e2-5e048810893b2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9721
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 401 x 126, 8-bit colormap, non-interlaced\012- data
Size:   9721
Md5:    2c44475adabd007e18a1fd487e5640f6
Sha1:   a522e328ad4063c0c47cb9b63f63d58cb105af38
Sha256: dc53f395ce6d4f7f71df28e5292c81d6ade18ff9e278d94726e21a4cbca387ff
                                        
                                            GET /data/saa/news/orcid.png HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 06:01:30 GMT
ETag: "c8f-5e04881080ee2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3238
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 225 x 225, 8-bit colormap, non-interlaced\012- data
Size:   3238
Md5:    15545707bcbb74cec1b70fbb8ced100a
Sha1:   1f5e8040a11343642c334ee591200b876b44b425
Sha256: b409b367dfd11f832777262e4abda9773f5e2b598bc476c68f1016163a1eda84
                                        
                                            GET /data/saa/news/open_access.png HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Tue, 31 May 2022 06:01:30 GMT
ETag: "13ea-5e04881085532-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5087
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 343 x 147, 8-bit colormap, non-interlaced\012- data
Size:   5087
Md5:    b66dbbbeb27a5a8278a1ed9d17f84715
Sha1:   112eb86e72ae6a2104d8929c22421cc814d80e6c
Sha256: 1d5cfd220f3377f413141e2df27a6899fa2dd8c2714bc44075eb26f4448911fa
                                        
                                            GET /themes/theme1/front/assets/images/footer.png HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/themes/theme1/front/assets/css/main.css?v=1.3
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "a02b-5bd53429d3a95-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 40965
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Size:   40965
Md5:    532fd7c2d3c6ec6f9674c3a46608dd01
Sha1:   87cf9fcdfa49dd1b493ebc647ef7c5828f7d86df
Sha256: 34b454e2a8268eccdd3cdb55c59549693e1406a83520d88a219904ecb88fd676
                                        
                                            GET /data/saa/coversheet/cover_en.jpg HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Thu, 01 Jul 2021 11:11:26 GMT
ETag: "20874-5c60de66bae76-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=4000, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=3000], baseline, precision 8, 300x400, components 3\012- data
Size:   123140
Md5:    c0706c14fc919141dbcbaefa1a949159
Sha1:   3d5b018d4f3f2fba83bf34b96f5c568a517a607e
Sha256: 354bbfd4e776119fc8cc02bee96b2263f3dd6967f81f9dcea611278db7aa637f
                                        
                                            GET /data/saa/coversheet/head_en.jpg HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Thu, 01 Jul 2021 11:11:26 GMT
ETag: "30629-5c60de66bae76-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Macintosh), datetime=2020:11:22 21:06:45], baseline, precision 8, 1170x140, components 3\012- data
Size:   188655
Md5:    e15bfcad0626e485588c33b9eae2d4e9
Sha1:   0ea4d8535fee856542c5c8c50ce8d23b6c612206
Sha256: 8b94facbdb1ed5136f974bad24ffc4c7777e1b2e351489026b78a36b824b1e3a
                                        
                                            GET /data/saa/coversheet/favicon.ico HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Sat, 02 Oct 2021 12:50:40 GMT
ETag: "47e-5cd5e2088a800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 629
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   629
Md5:    1152241ca67002a868348f1b74a21c9b
Sha1:   73330d1648c26a3334e9609cb5a783acf7c39754
Sha256: 77e68d9e761c937d6002e9769932e55e7d297a14af8d22122a989eff58e822f7
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WwSqHJBE0kg8kHGEzAdd3A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.233.140.213
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jOofamTcRjSLg4F9lO3IPGGfpvI=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2927
Expires: Fri, 02 Sep 2022 20:30:35 GMT
Date: Fri, 02 Sep 2022 19:41:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2927
Expires: Fri, 02 Sep 2022 20:30:35 GMT
Date: Fri, 02 Sep 2022 19:41:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2927
Expires: Fri, 02 Sep 2022 20:30:35 GMT
Date: Fri, 02 Sep 2022 19:41:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2927
Expires: Fri, 02 Sep 2022 20:30:35 GMT
Date: Fri, 02 Sep 2022 19:41:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2927
Expires: Fri, 02 Sep 2022 20:30:35 GMT
Date: Fri, 02 Sep 2022 19:41:48 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9252
x-amzn-requestid: 7feebba8-f6b9-4b79-9726-5a7534da277e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyVG5DoAMF_Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112675-3123158f3dcfbd476537ca3c;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BOa5zGQyJS9q9bHmtKzlNtyS9ToGPZJkDFo2uY2lzz8Lnd3cZLQEaA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:01:10 GMT
age: 78038
etag: "cbb4546228115cccc122b16209e70171bef5c1f2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9252
Md5:    5ba50b2fd1814c5ffc95aef40c69ce8c
Sha1:   cbb4546228115cccc122b16209e70171bef5c1f2
Sha256: de822c8549508b28a07d29b203ae3ef356470df906cba727fc765f1bd14bb866
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 16818
x-amzn-requestid: fa921878-2054-453b-b313-681cdd9c9068
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj-Z_HUNIAMFltg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b110c-053ce81943fea70c2de7daa0;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 06:54:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CDyJUMKmUlrT3LgfeiZhQN1XEV2vKTIZtmV4QZYXaoM4PWbYo8IyJA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 14:46:29 GMT
age: 17719
etag: "9fef9b071daea6793cbbdfe391254ac4326b1aa2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   16818
Md5:    12756903aaa74164feb5f8525398ca36
Sha1:   9fef9b071daea6793cbbdfe391254ac4326b1aa2
Sha256: 6d474a6d96aebfed43a4f6812f18a1be8d100c590f75eb0fbf4ec7277dd0c442
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 79462
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10435
Md5:    955f2a35bd6b3802670e7fa8a7cda833
Sha1:   4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
Sha256: 2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3cef8f6-078d-43f5-ba9b-fcc5dc69a7f7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13104
x-amzn-requestid: da627f0c-5cde-4a37-878c-dcada8a25f64
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzL6_EYoIAMFiYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631126ac-10dbcb432e6d1af46cffaefe;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4Ve7euVpAusbqUYkx-vWIBLDbIidnuXDqMDG0LRpu40sXh6a2fEPJA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:06:50 GMT
age: 77698
etag: "8a9278f8ff5d149420673649878ca1ee266a0783"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13104
Md5:    cab49f59207f816d98a21cd3fc2c37d1
Sha1:   8a9278f8ff5d149420673649878ca1ee266a0783
Sha256: aebe0748f049bcb801be83459d4bae66b9c1453de3b0ea7e6a63bea88b6e7a5a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6196
x-amzn-requestid: a7d6ce70-06d7-498c-8024-80185a3fc3e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyLFmVIAMFkcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112674-3fad622927177e9236d7c50a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wLezqM4_yKqtOR7D43beBqm8TAD5y8eQ7xHOxjDJdHchCpyusuzMuQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:55:46 GMT
etag: "ec65cb47d86488f734c945a210d5f636a40fea2c"
age: 78362
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6196
Md5:    5e05660322f0368dd2bf8067d7e4554d
Sha1:   ec65cb47d86488f734c945a210d5f636a40fea2c
Sha256: 98875230ec45766102191bdc4180742fa3b8f3ad5ad1a128d12437105f86247e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5079
x-amzn-requestid: 3b19c77a-2e9b-499f-890b-36fc4ee72ba7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslOVEtZIAMFv1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e825b-01b7b71617b59f7414a0e5e5;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: et3ZsWRVoBNMpArUk9CohTyMpS5F0eKiR6cZJRfwAEiiFJUaeay58g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:48:05 GMT
age: 78823
etag: "288b82ad8f924eb9570ae1c55da84d041f862366"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5079
Md5:    5c3b7580a37e6eb7e5bd18491f1d4dd6
Sha1:   288b82ad8f924eb9570ae1c55da84d041f862366
Sha256: 046d1ef76448c53446068ef5f8315b7299484996cdebfd9d1e749b4ded9c7d3c
                                        
                                            GET /themes/theme1/front/assets/js/display.js HTTP/1.1 
Host: saa.rovedar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://saa.rovedar.com/
Cookie: juFirstLang=en; juSecondLang=fa; juLang=en; PHPSESSID=n1ddh4isk9uud6ap6n3djng6ur
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         51.195.105.193
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Sep 2022 19:41:47 GMT
Server: Apache
Last-Modified: Fri, 12 Mar 2021 09:09:41 GMT
ETag: "285e-5bd53429d59d5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2908
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Malware